Blog

Insights and expertise from Thoropass

Featured

Introducing NIST CSF, CMMC Level 1 and Cyber Essentials

Strengthen your baseline security posture and align with the latest industry guidance. Our platform and experts are here to help you move forward with clarity and speed.

Learn More

Latest posts

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Compliance /

GDPR US equivalent: How the US and EU compare on data privacy laws

If you’ve visited a website or checked your email in the past few years, you’re undoubtedly familiar with GDPR. Companies informing you of privacy policy updates and websites prompting you to manage your cookie preferences are just some ways we experience the impact of the landmark data privacy law.

Read Article
GDPR US equivalent_ How the US and EU compare on data privacy laws

Compliance /

PCI DSS QSAs: The role of a qualified security assessor explained

A qualified security assessor (QSA) plays a key role in PCI DSS compliance by evaluating and improving card payment security within organizations. This article is your resource for understanding both the pivotal responsibilities of a QSA in maintaining and assessing compliance and the journey to becoming one. With the continuous evolution of digital threats, a QSA’s role is more crucial than ever in safeguarding sensitive cardholder data.

Read Article

Compliance /

Your ultimate HIPAA compliance checklist(s) for 2025

If you’re tasked with ensuring HIPAA compliance, you know the stakes are high. Simplify your process with our comprehensive HIPAA compliance checklist.

Read Article

Compliance /

PCI DSS is retiring its current version on March 31: What you need to do next

PCI DSS’s (Payment Card Industry Data Security Standard) current version, v 3.2.1, will be retired on March 31, 2024. Organizations seeking to maintain PCI DSS compliance will have from April 1, 2024, to renewal (or March 31, 2025, whichever comes first) to upgrade to v 4.0. The latest version features new requirements and updates to keep pace with the rapidly evolving digital payment ecosystem.

Read Article

Life at Thoropass /

Real Automation + Real Audits: Renewing our commitment to being your favorite compliance platform

Thoropass was founded nearly five years ago on the principle that true compliance innovation would only be served by seamlessly providing infosec compliance automation and high quality audit capability together as a single, simplified platform.

Read Article
Curated by experts

We provide the compliance expertise, so you don’t have to

At Thoropass, we’re more than a readiness solution. Our team of experts are equipped with insight and hands-on experience to provide you with industry-leading perspective and guidance.

Meet the Experts

Stay connected

Subscribe to receive new blog articles and updates from Thoropass in your inbox.

Thank you for subscribing! Be on the lookout for confirmation in your inbox!
Oops! Something went wrong while submitting the form.

Want to join our team?

Help Thoropass ensure that compliance never gets in the way of innovation.

View open roles

Have any feedback?

Drop us a line and we’ll be in touch.

Contact us
Get Started

Solutions

Get CompliantMaintain ComplianceIT Security Audits

Products & Services

Thoropass AuditCompliance AutomationPentestingThoropass AIAccess ReviewsSecurity QuestionnairesRisk AssessmentTrust CenterIntegrations and APIs

Frameworks

SOC 1SOC 2HIPAAHITRUSTCyber EssentialsGDPRISO 27001ISO 27018ISO 42001CMMC Level 1NIST CSF 2.0PCI DSSOther Frameworks

Industries

HealthcareSaaSFinTechOther Industries

Company

Our DifferenceMeet the ExpertsNewsroomCareersIndependence and ExcellenceBecome a PartnerTrust CenterContact us

Resources

Case StudiesBlogGuidesEventsHelp Center

Legal

MSADPAReport an IssueTerms and ConditionsPrivacy Policy

Leading by Example: Thoropass' Certifications

© Copyright 2025 Thoropass, Inc.